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o are we * 

Mike Dahn: just a guy who likes to talk about payment security risk 
management, and regulatory compliance. In his spare time, Mike 
builds communities and develops communications channels that 
enable bidirectional communications and disrupt the asymmetry of 
information. 



Dr. Anton Chuvakin, is a recognized security expert in the field of log 
management and PCI DSS compliance. He is an author of books 
"Security Warrior" and "PCI Compliance" and a contributor to "Know 
Your Enemy II", "Information Security Management Handbook" and 
others. 

Joshua Corman, (aka Max Headroom) most recently Principal Security 
Strategist at IBM Internet Security Systems, is Research Director for the 
451 Group. Corman leads the 451 Group's research team in the area of 
IT enterprise security. 



Jack Daniel, Guy with beard, sock puppets and Shmoobus 



We do not speak for our employers, clients or 
customers. Nor for our spouses, siblings, or offspring. 
But my dog will back me up. 

Our opinions are our own, the facts are as we see them. 

We aren't lawyers.. .etc. 






CWe want an honest discussion, compliance issues are 
changing what we call security, and PCI is a poster 
child for the changes. 

These issues are much bigger than just PCI. 



There have been plenty of PCI LoveFests 
And quite a few uninformed rants 
This is neither of those 
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Think before you speak. 

No Religion 

Hitting below the belt is OK, we re already been hit 

there 

Compliance hits the wallet, and that's usually in a pocket 
below the belt. 

Shmooballs welcome, we ain't scared. Much. 
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We fear the auditor more than the attacker. 

Is PCI the No Child Left Behind act of InfoSec? 

What is PCI, where did it come from, and why? 

Is PCI effective? 

What about unintended consequences? 

Impact on R&D and VC investments? 

Alternatives? 
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C Check out podcasts of ongoing compliance discussions 
at CSO Online and the Network Security Podcast 

• Jack Daniel blog.uncommonsensesecurity.com 

Twitter: @jack_daniel 

• Anton Chuvakin chuvakin.org 

Twitter: @anton_chuvakin 

• Michael Dahn chaordicmind.com 

Twitter: @sfoak 

• Joshua Corman 451group.com 
Twitter: @joshcorman 



